In accordance with the HKMA’s supervisory requirements, banks will not send SMS or email messages with embedded hyperlinks directing customers to their websites or mobile applications to carry out transactions. Nor will they ask customers to provide sensitive personal information, including login passwords and OTPs, via hyperlinks.
If you receive SMS or email messages with embedded hyperlinks requesting you to input internet banking login credentials, these messages should not originate from banks. You should think twice before clicking any hyperlinks purportedly sent by banks. If you find the hyperlinks (or attachments) in the SMS or email messages suspicious, do not click the hyperlinks (or open the attachments). You should always access Internet banking by entering the bank’s website address directly, or using a bookmark or an Internet banking mobile application (app).
In case of any queries, bank customers can contact the relevant bank to verify the SMS or email authenticity via other channels (e.g. bank’s customer service hotline).
Internet banking login credentials, including usernames, login passwords and one-time passwords (OTPs), are as important in the digital world as the keys to their houses are in the physical one, and should be properly safeguarded.
The list below covers press releases for alerting the public on phishing SMS and email messages that have been issued by the HKMA.
Press Release(s)
6 July 2021 |
|
5 March 2021 |
The HKMA alerts the public to phishing scams via hyperlinks embedded in SMS or emails |
There are credit card scams happening from time to time, with evolving modus operandi and different deceptive tactics used by fraudsters. Remember to stay vigilant and safeguard your card information to avoid falling prey to credit card scams. As a smart credit card user, you should pay attention to the following tips:
If you do not use or safeguard your credit cards and card information properly, fraudsters may exploit such opportunity to commit frauds (e.g. steal your cards to conduct unauthorised credit card transactions), causing financial losses to you. In short, remember to safeguard your card and card information to avoid falling prey to credit card scams.
Press Release(s)
29 June 2023 |
If in doubt about the email, check out the bank’s customer service hotline via its official channels (e.g. website, letters or promotional materials), even if a phone number is shown in the email.
Hackers may add some security tips at the bottom of the phishing email to make it look more genuine.
Whenever banks become aware of fraudulent websites, phishing e-mails or similar scams (see below) which are designed to trick their customers into revealing sensitive customer information, they should notify promptly their customers through issuing press releases (if it is considered to be in the best interests of their customers) and report the matters to the HKMA.
The list below covers such press releases issued by banks and other similar press releases issued by the HKMA in the past. The list would be updated from time to time to include new entries.
Issuance Date | Alleged Name in the Scam | Type of the Scam and Hyperlink to the Press Release (See Note) | Fraudulent Website Address (If Applicable) |
---|---|---|---|
21 Nov 2024 |
Nanyang Commercial Bank, Limited |
Fraudulent websites |
hxxps://www[.]ncbhko[.]com |
20 Nov 2024 |
China Construction Bank (Asia) Corporation Limited |
Fraudulent websites and internet banking login screens |
hxxps://jiansheyinhang[.]top |
19 Nov 2024 |
China Construction Bank (Asia) Corporation Limited |
Fraudulent website |
hxxps://carousell-hk[.]norgdc[.]shop/login/283NY417OD317N8160219 |
19 Nov 2024 |
Chong Hing Bank Limited |
Fraudulent Website |
hxxps://carousell-hk[.]norgdc[.]shop/login/283OI417NV317O8160219 |
19 Nov 2024 |
DBS Bank (Hong Kong) Limited |
Phishing emails |
legal[.]section@dbs-legal[.]com |
18 Nov 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent websites and internet banking login screens |
hxxps://bochk[.]j18[.]xyz |
15 Nov 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Fraudulent websites |
shk[.]hkhfad[.]com |
13 Nov 2024 |
China Construction Bank (Asia) Corporation Limited |
Fraudulent websites |
hxxp://asia[.]ccb[.]top |
5 Nov 2024 |
China CITIC Bank International Limited |
Fraudulent website and internet banking login screen |
hxxps://www[.]enciticb[.]com/ |
5 Nov 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent website |
juliusbab[.]com |
5 Nov 2024 |
Bank of Singapore Limited |
Fraudulent social media account |
hxxps://www[.]tiktok[.]com/@lelongemas3 |
29 Oct 2024 |
Livi Bank Limited |
Phishing instant messages |
+852 9015 2418 |
25 Oct 2024 |
Livi Bank Limited |
Phishing instant messages |
+852 9179 1375 |
23 Oct 2024 |
Dah Sing Bank, Limited |
Fraudulent websites, internet banking login screens and phishing emails |
hxxps://dahsingltd1[.]serv00[.]net/83190671/clientside/[?]verirypage&human=# |
22 Oct 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent websites and phishing instant messages |
groupvip[.]top |
21 Oct 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website |
hxxps://sfexpress[.]fps-in[.]shop/212764459 |
16 Oct 2024 |
Bank of Singapore Limited |
Fraudulent mobile application (App) |
hxxps://apk[.]support/app/com[.]bankofsingapore[.]digital |
15 Oct 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website |
hxxps://dbsexc[.]com |
3 Oct 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://zylc-h5[.]s3-accelerate[.]amazonaws[.]com/index[.]html#/ |
3 Oct 2024 |
Fubon Bank (Hong Kong) Limited |
Phishing instant messages |
N/A |
27 Sep 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent website |
hxxps://bankingofchinahk[.]top/ |
25 Sep 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Phishing emails |
Informationservices[.]hsbc@hk01[.]com |
24 Sep 2024 |
Dah Sing Bank, Limited |
Fraudulent website and social media page |
hxxps://www[.]facebook[.]com/profile[.]php?id=100092588633313 |
23 Sep 2024 |
China CITIC Bank International Limited |
Fraudulent website and internet banking login screen |
hxxps://carousell[.]fpsasia[.]shop/personal/223672895?refer=&bank=28 |
20 Sep 2024 |
Bank of Singapore Limited |
Fraudulent mobile application (App) |
hxxps://www[.]youkelai[.]com/fr/apps/21904 |
19 Sep 2024 |
Public Finance Limited |
Fraudulent website and social media account |
hxxps://xbbjcftv-public-finance-limited[.]myfreesites[.]net |
17 Sep 2024 |
Shanghai Commercial Bank Limited |
Fraudulent social media account and phishing instant messages |
852-60959867 |
12 Sep 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Phishing emails |
Email address: kaby@ecoethabitation[.]com |
11 Sep 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Phishing instant messages |
81912526 |
10 Sep 2024 |
ZA Bank Limited |
Phishing emails |
zabanklimited@gmail[.]com |
5 Sep 2024 |
Bank of Singapore Limited |
Fraudulent social media page |
hxxps://www[.]facebook[.]com/groups/1042029320831398/ |
30 Aug 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent websites |
hxxps://carousell[.]transhk[.]shop/26359 |
30 Aug 2024 |
Tai Sang Bank Limited |
Phishing emails |
kuen@taisbkhk[.]com |
28 Aug 2024 |
Bank of Singapore Limited |
Fraudulent mobile application (App) |
hxxps://www[.]40407[.]com/fr/apps/101876 |
28 Aug 2024 |
Livi Bank Limited |
Unauthorised websites and mobile applications (Apps) |
hxxps://apkgk[.]com/com[.]livibank[.]hk |
26 Aug 2024 |
Bank of China (Hong Kong) Limited |
Phishing instant messages |
85281703989 |
26 Aug 2024 |
Airstar Bank Limited |
Fraudulent websites and social media accounts |
hxxps://x[.]com/Airstar_Bank |
23 Aug 2024 |
Industrial and Commercial Bank of China (Asia) Limited |
Fraudulent websites and phishing instant messages |
+852 44157410 |
23 Aug 2024 |
Bank of Singapore Limited |
Fraudulent mobile application (App) |
hxxps://m[.]40407[.]com/en/apps/99698 |
23 Aug 2024 |
Public Bank (Hong Kong) Limited |
Fraudulent website and phishing emails |
public-digitals[.]com |
23 Aug 2024 |
Mox Bank Limited |
Fraudulent websites and phishing instant messages |
cutt[.]ly/febHGckP |
22 Aug 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Phishing instant messages |
81928339 |
22 Aug 2024 |
Hang Seng Bank, Limited |
Fraudulent websites and phishing instant messages |
hxxps://ii9ddws[.]xyz/ |
21 Aug 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent websites and phishing instant messages |
hxxps://ipdm8rv[.]xyz |
20 Aug 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
juliusbar[.]live |
20 Aug 2024 |
Bank of Singapore Limited |
Fraudulent social media account and phishing instant messages |
hxxps://t[.]me/buy_Mayba_Singapore_Limited |
20 Aug 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Fraudulent websites and phishing instant messages |
hxxps://1qzr362[.]xyz |
19 Aug 2024 |
Dah Sing Bank, Limited |
Fraudulent website and phishing emails |
accountdsbgl@hcbmy[.]com |
16 Aug 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
juliusbar[.]xyz |
16 Aug 2024 |
Dah Sing Bank, Limited |
Phishing emails |
info@dahsing-hk[.]com |
15 Aug 2024 |
Bank of China (Hong Kong) Limited |
Phishing instant messages |
800966815 |
15 Aug 2024 |
Livi Bank Limited |
Fraudulent social media account |
LiviBank club (WeCom account) |
13 Aug 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Websites |
juliusbar[.]asia |
13 Aug 2024 |
Tai Sang Bank Limited |
Phishing emails |
patrickma1975@taisanghk[.]com |
12 Aug 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website and social media page |
www[.]facebook[.]com/profile[.]php?id=61563147106910 |
9 Aug 2024 |
Bank of Singapore Limited |
Fraudulent mobile application (App) |
hxxps://apk[.]support/download-app/com[.]micepad[.]bos |
6 Aug 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Fraudulent website and phishing instant messages |
Myhkhsbc[.]com |
2 Aug 2024 |
Dah Sing Bank, Limited |
Fraudulent websites and internet banking login screens |
hxxps://dsb[.]hcbmy[.]com |
31 Jul 2024 |
Public Finance Limited |
Fraudulent website and social media page |
hxxps://www[.]facebook[.]com/profile[.]php?id=61563659573855 |
29 Jul 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website and Phishing Emails |
juliusbaar[.]com |
24 Jul 2024 |
Fubon Bank (Hong Kong) Limited |
Phishing instant messages |
N/A |
24 Jul 2024 |
Mox Bank Limited |
Suspicious websites and internet banking login screens |
moxweb[.]cc |
22 Jul 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Websites |
fazbankcapital[.]com[.]br |
19 Jul 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Fraudulent websites and social media accounts |
hxxps://www[.]facebook[.]com/profile[.]php?id=100083035625511 |
8 Jul 2024 |
China CITIC Bank International Limited |
Fraudulent website and phishing emails |
hxxp://cncbinternational[.]com[.]hkcn[.]xyz/?rid=l0MHgre |
4 Jul 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
juliusbar[.]in |
4 Jul 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
Carousell[.]trafferwallet[.]shop |
2 Jul 2024 |
Royal Bank of Canada |
Fraudulent social media account and phishing instant messages |
@Cs_Terencechow at Telegram |
26 Jun 2024 |
China Construction Bank (Asia) Corporation Limited |
Phishing instant messages |
N/A |
25 Jun 2024 |
Bank of China (Hong Kong) Limited |
Phishing emails |
N/A |
25 Jun 2024 |
Ant Bank (Hong Kong) Limited |
Phishing instant messages |
+852-46572396 |
14 Jun 2024 |
Ant Bank (Hong Kong) Limited |
Fraudulent Website |
hxxps://114[.]134[.]188[.]86/#/ |
12 Jun 2024 |
Mizuho Bank, Ltd. |
Fraudulent Websites |
www[.]shang[.]mizuho |
7 Jun 2024 |
China CITIC Bank International Limited |
Fraudulent website and internet banking login screen |
hxxps://www[.]51huie[.]com/pages/fc4327ca |
7 Jun 2024 |
China Construction Bank (Asia) Corporation Limited |
Phishing instant messages |
N/A |
31 May 2024 |
Airstar Bank Limited |
Fraudulent social media account |
hxxps://www[.]facebook[.]com/61558393299228 |
28 May 2024 |
Industrial and Commercial Bank of China (Asia) Limited |
Phishing instant messages |
N/A |
24 May 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
Juliusbaer[.]bankingonline[.]fr |
24 May 2024 |
Tai Sang Bank Limited |
Fraudulent website and phishing emails |
hxxps://www[.]taisanglimited[.]com/ |
22 May 2024 |
Bank of China (Hong Kong) Limited |
Phishing emails |
lochikin@bcohk[.]com |
22 May 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
Juliusbaer[.]dimensionselite[.]vip |
21 May 2024 |
Tai Sang Bank Limited |
Phishing emails |
pma@taisanghk[.]com |
21 May 2024 |
Tai Yau Bank, Limited |
Suspicious website |
hxxps://www[.]bancobursatil[.]com |
20 May 2024 |
Hang Seng Bank, Limited |
Fraudulent social media posts |
N/A |
14 May 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website and social media page |
www[.]facebook[.]com/profile[.]php?id=100037358174724 |
10 May 2024 |
Fubon Bank (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://febnkgov[.]top |
9 May 2024 |
China CITIC Bank International Limited |
Fraudulent website and internet banking login screen |
hxxps://ctiliu4545savings[.]com |
7 May 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website and social media page |
www[.]facebook[.]com/profile.php?id=61552004557113 |
3 May 2024 |
Bank of China (Hong Kong) Limited |
Phishing emails |
NA |
3 May 2024 |
Fubon Bank (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://febnk[.]top |
2 May 2024 |
Dah Sing Bank, Limited |
Fraudulent website |
www[.]dahsingfin[.]com |
30 Apr 2024 |
Nanyang Commercial Bank, Limited |
Fraudulent website |
hxxps://ncbank[.]pages[.]dev/ |
30 Apr 2024 |
Fubon Bank (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://www[.]febnk[.]cn |
23 Apr 2024 |
Chong Hing Bank Limited |
Fraudulent Website and Mobile Application (App) |
hxxps://chs-2fa[.]bd[.]aptoide[.]com/app |
22 Apr 2024 |
Hang Seng Bank, Limited |
Phishing emails |
lockmandan@tri-citylock[.]com |
19 Apr 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
diyigongyiing[.]com |
15 Apr 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://carousell[.]orderfrom[.]today/personal/240591716?refer=3&bank=4 |
12 Apr 2024 |
Airstar Bank Limited |
Fraudulent website and internet banking login screen |
hxxp://airstar[.]bond?entity=692498 |
9 Apr 2024 |
Dah Sing Bank, Limited |
Fraudulent website and internet banking login screen |
hxxps://www[.]dsbgl[.]com |
3 Apr 2024 |
Bank of China (Hong Kong) Limited |
Phishing emails |
BOC WEALTH <info@bocwealth-hk[.]com> |
27 Mar 2024 |
Bank of Singapore Limited |
Fraudulent website |
hxxps://ptsan[.]exeaja[.]com/5mda7bdhf31/?riCeMx=boyviqu2170-8pt1695849-5w7s31-d1711165973&sec=cWJ2cTYyNDY0MzExNDE=&sec=cWJ2cTYyNDY2Nz4yMTc= |
26 Mar 2024 |
Bank of Singapore Limited |
Fraudulent website |
hxxps[:]//ulindator[.]xyz/prland281/?byaer=bobr&pixel=1070972610792391&_subid=2226t5b3c4ou&_token=uuid_2226t5b3c4ou_2226t5b3c4ou65fb6e719492b3[.]39565720 |
22 Mar 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://carousell-hk[.]webefx[.]shop/login/280AP817AL109O1763734/ |
21 Mar 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent websites and internet banking login screens |
hxxp://sf-express[.]orderfrom[.]shop/personal/232520919?refer=&bank=4 |
19 Mar 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent websites and internet banking login screens |
hxxps://carousell[.]fundservice[.]online/247571701 |
19 Mar 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent Website |
juliusbaer-escrow[.]com |
15 Mar 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://sf-express[.]view247[.]biz/personal/186527400?refer=&bank=4 |
13 Mar 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent websites and internet banking login screens |
hxxp://SMS9[.]INFO/FBDJS |
8 Mar 2024 |
China CITIC Bank International Limited |
Fraudulent social media page and phishing emails |
www[.]facebook[.]com/people/Frank-William/100088728342968 |
7 Mar 2024 |
Bank of China (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
hxxps://carousell[.]bankway[.]space/personal/176573816refer=3&bank=4 |
7 Mar 2024 |
Bank of Singapore Limited |
Fraudulent website |
hxxps://altimar[.]top/_cyborg_oxy/zone/7d9a0d11cb36e12a68817aff945390de/login[.]php?login&_x_tr_sl=auto&_x_tr_tl=null&_x_tr_hl=null&_x_tr_pto=wapp&request_type=null&no_redrct=null&pcnt=3&no_psplash=null&pmax=3 |
6 Mar 2024 |
Mox Bank Limited |
Suspicious websites |
moxgroup[.]cc |
6 Mar 2024 |
CMB Wing Lung Bank Limited |
Fraudulent websites and mobile applications (Apps) |
hxxps://www[.]dancihu[.]com/app/62053[.]html |
5 Mar 2024 |
Public Bank (Hong Kong) Limited |
Fraudulent website and phishing emails |
hxxps://public-digital[.]net/tatyana-mesevrenko |
4 Mar 2024 |
Fubon Bank (Hong Kong) Limited |
Fraudulent website and phishing instant messages |
hxxps://hk[.]huaq-xd[.]top |
26 Feb 2024 |
CMB Wing Lung Bank Limited |
Fraudulent websites |
hxxps://183178074033[.]ctinets[.]com/wlb_corporate/hk/index[.]html |
21 Feb 2024 |
Bank Julius Baer & Co. Ltd. |
Fraudulent website |
private-juliusbaer[.]com |
19 Feb 2024 |
Bank of China (Hong Kong) Limited |
Phishing emails |
中國銀行 <boc@bocbusiness[.]com[.]ho> |
9 Feb 2024 |
China Minsheng Banking Corp., Ltd. |
Phishing Emails |
info@ccbmcn[.]com |
9 Feb 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent websites and internet banking login screens |
www[.]kampanjasuomi[.]com/x/ |
6 Feb 2024 |
Public Bank (Hong Kong) Limited |
Fraudulent website and phishing emails |
hxxps://public-digital[.]com/votinov-roman/ |
6 Feb 2024 |
Mox Bank Limited |
Suspicious website |
hxxps://mroxcryptoswap[.]net |
5 Feb 2024 |
DBS Bank (Hong Kong) Limited |
Phishing Emails |
dbshnkg[.]com |
5 Feb 2024 |
Airstar Bank Limited |
Fraudulent social media accounts and phishing instant messages |
hxxps://www[.]facebook[.]com/61555906858524 |
29 Jan 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website and internet banking login screen |
internett[.]ofer-banking-dbssg[.]com |
26 Jan 2024 |
DBS Bank (Hong Kong) Limited |
Fraudulent website and social media page |
www[.]facebook[.]com/congratulation[.]winner[.]806994 |
26 Jan 2024 |
China CITIC Bank International Limited |
Fraudulent website and phishing emails |
cncbinternationalcn[.]com |
17 Jan 2024 |
The Hongkong and Shanghai Banking Corporation Limited |
Phishing instant messages |
N/A |
12 Jan 2024 |
Fubon Bank (Hong Kong) Limited |
Fraudulent website, internet banking login screen and phishing instant messages |
hxxps://fb-gj[.]top |
9 |